I raised two issues related to see what you sign, decryption
transform, linking in the list discussion
ISSUE-106 and ISSUE-107
I think we might need to be more detailed about relationship of
Security 2.0 and XProc in an attempt to resolve this sort of workflow
related issue (e.g. indicate clearly how XProc could be used to
address such cases without embedding workflow in to signature).
regards, Frederick
Frederick Hirsch
Nokia